Skip to main content
All CollectionsGetting Started
How secure are mobile keys and iCloud Keychain backups?
How secure are mobile keys and iCloud Keychain backups?

Learn how Theya secures your mobile key and how the iCloud Keychain can back up your private key, ensuring it is accessible only by you.

J
Written by Jake Morr
Updated over 6 months ago

When holding bitcoin in self-custody, the secure storage of your private keys is crucial. Let's break down how Theya mobile keys and iCloud Keychain backups ensure your funds remain protected and accessible only by you.

It is highly recommended that you backup your mobile key using iCloud Keychain. This is what allows for the restoration of a mobile key on a new phone.


How Are Mobile Keys Secured?

Stored Locally On Your Phone

Your mobile key is securely stored on your device. Even if you delete the Theya app, your key remains safe because it’s stored in the local keychain, protected by the iPhone’s secure enclave. This means no one can delete your key, ensuring constant protection.

The local keychain is where sensitive information, such as passwords, credit card details, and your mobile key, is encrypted and securely stored on your iPhone.

Sandboxed Security

The mobile key is sandboxed, restricted to Theya, so other apps can’t access it. This keeps your mobile key safe from any unauthorized access in the event that an app on your phone is malicious or compromised.

Independent From iCloud

Your mobile key always remains on the device. Even if you lose access to your Apple or iCloud account, your key is unaffected. "Smart wallets", on the other hand, risk losing funds if a passkey is accidentally deleted or if a malicious party gains iCloud access.


How Safe Is An iCloud Keychain Backup?

With an iCloud Keychain backup, your actual private key is not stored in the cloud. Instead, an encrypted version of your key is stored in the iCloud Keychain, ensuring it remains protected. This is further secured with double encryption.

Double Encryption

Before your mobile key is backed up to iCloud Keychain, it’s encrypted again with Theya’s encryption key. This means neither Theya nor Apple can access your encrypted mobile key. If a malicious party was to gain access to your iCloud account, all they would see is ciphertext.

Summary: An attacker would need to bypass the encryption of both Apple iCloud Keychain and Theya, just to find the encrypted backup of your mobile key. Only with the physical secure enclave of your phone can the key be accessed. At no point is your mobile key accessible by anyone but you.


Recovery Process

In the event that you lose or break your iPhone, you can restore your mobile key on a new device using the iCloud Keychain backup.


Multisig Context

For long-term security of your funds, we strongly recommend using your mobile key in a multisig context. This adds another layer of protection, making it even harder for unauthorized parties to access your funds.


Schedule a free consultation to discuss your specific needs!


🔍 Learn More About Bitcoin

📚📖 Theya’s blog is a resource for learning and sharing Bitcoin fundamentals.

📉📈 Subscribe to Theya’s newsletter for weekly Bitcoin market reports.

Did this answer your question?